notdls's Stars
blacklanternsecurity/badsecrets
A library for detecting known secrets across many web frameworks
matanber/domlogger-configs
Useful configurations for the DomLogger++ extension
kimci86/bkcrack
Crack legacy zip encryption with Biham and Kocher's known plaintext attack.
ajxchapman/ReServ
A set of simple servers (currently HTTP/HTTPS and DNS) which allow configurable and scriptable responses to network requests.
MegaManSec/SSH-Snake
SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.
btdig/dhtcrawler2
dhtcrawler is a DHT crawler written in erlang. It can join a DHT network and crawl many P2P torrents. The program save all torrent info into database and provide an http interface to search a torrent by a keyword
bitquark/shortscan
An IIS short filename enumeration tool
narfindustries/http-garden
Differential fuzzing REPL for HTTP implementations.
wh1t3p1g/tabby
A CAT called tabby ( Code Analysis Tool )
cmang/durdraw
Versatile ASCII and ANSI Art text editor for drawing in the Linux/Unix/macOS terminal, with animation, 256 and 16 colors, Unicode and CP437, and customizable themes
yunginnanet/prox5
🧮 SOCKS5/4/4a 🌾 validating proxy pool and upstream SOCKS5 server for 🤽 LOLXDsoRANDum connections 🎋
chrisallenlane/drek
A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a large application, with an emphasis on identifying development anti-patterns and footguns.
sw33tLie/sns
IIS shortname scanner written in Go
efchatz/pandora
A red team tool that assists into extracting/dumping master credentials and/or entries from different password managers.
sudosammy/knary
A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams/Lark/Telegram & Pushover support
httptoolkit/jvm-http-proxy-agent
A JVM agent that automatically forces a proxy for HTTP(S) connections and trusts MitM certificates, for all major JVM HTTP clients
8051Enthusiast/biodiff
Hex diff viewer using alignment algorithms from biology
skahwah/SQLRecon
A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.
danifus/pyzipper
Python zipfile extensions
synacktiv/php_filter_chains_oracle_exploit
A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.
brompwnie/botb
A container analysis and exploitation tool for pentesters and engineers.
fortra/impacket
Impacket is a collection of Python classes for working with network protocols.
sleeyax/burp-awesome-tls
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
fransr/postMessage-tracker
A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
hahwul/jwt-hack
🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)
cckuailong/JNDI-Injection-Exploit-Plus
80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP server.
usdAG/slipit
Utility for creating ZipSlip archives
p0dalirius/CVE-2021-43008-AdminerRead
Exploit tool for CVE-2021-43008 Adminer 1.0 up to 4.6.2 Arbitrary File Read vulnerability
DominicBreuker/pspy
Monitor linux processes without root permissions
AykutSarac/jsoncrack.com
✨ Innovative and open-source visualization application that transforms various data formats, such as JSON, YAML, XML, CSV and more, into interactive graphs.